Hi I have a data set with 2 different time fields (Start Time and End Time), and 1 count value.
Let Say I have
Start Time - End Time - Count
6.00 - 8.00 - 5
7.00 - 9.00 - 7
8.00 - 10.00 - 3
And I want to display how much is the sum of count during specific time in ELK:
Time - Sum
6.00 - 5
7.00 - 12
8.00 - 15
9.00 - 10
10.00 - 3
How Can I do that? Thanks
Any solution that we can find to do this in Kibana will be a hacky one. This is not the type of calculation ES is built for.
If you had a document ingested in ES every time you have something starting and every time it stops, you could do a Diff between cumulative sum of starting and cumulative sum of ending.
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.